401trg / utilities
This repository contains tools used by 401trg.
☆20Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for utilities
- ☆27Updated 6 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆22Updated last year
- Some rules, scripts of some use to us☆9Updated 3 weeks ago
- Zeek package to generate a SMB client fingerprint☆26Updated 4 years ago
- Bro integration with osquery☆15Updated last year
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 5 years ago
- Detect kerberos attacks in pcap files☆27Updated 8 years ago
- Public rules and samples for various automations through LimaCharlie.io☆11Updated 2 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 7 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 7 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 5 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- Presentation materials for talks I've given.☆20Updated 5 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- Atomic Red Team App for Phantom☆14Updated 4 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 6 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Links to malware-related YARA rules☆14Updated 2 years ago
- Triage automation for suspect URLs☆12Updated 5 years ago
- A virtual MediaWiki development environment, built on Vagrant, VirtualBox, and Puppet.☆16Updated 7 years ago
- Threat Mapping Catalogue☆17Updated 3 years ago
- Historical Observations of Actionable Reputation Data☆13Updated 6 years ago
- dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement d…☆18Updated 8 years ago